Buffer Overflow Vulnerability in IBM Tivoli Storage Manager AIX Client
CVE-2016-5985

7.8HIGH

Key Information:

Vendor
IBM
Vendor
CVE Published:
1 February 2017

Summary

The IBM Tivoli Storage Manager AIX client is susceptible to a buffer overflow vulnerability when the Journal-Based Backup feature is activated. This weakness can allow a local attacker to exploit the flaw, potentially leading to arbitrary code execution or a system crash. It is critical for users of this product to apply necessary patches and follow security best practices to mitigate any risks associated with this vulnerability. For more information and remediation steps, visit the IBM support page.

Affected Version(s)

Tivoli Storage Manager 5.3.5.3

Tivoli Storage Manager 5.4.1.2

Tivoli Storage Manager 4.2

References

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.